CVE-2024-3400 — Palo Alto Networks PAN-OS

known ransomware use

Palo Alto Networks PAN-OS Command Injection Vulnerability

Added to KEV

2024-04-12

Federal due date

2024-04-19

Vendor

Palo Alto Networks

Product

PAN-OS

EPSS

99.9th percentile (score 0.943, as of 2026-06-08)

NVD CVSS v3.1

—

Ransomware use

Known

Upstream

https://nvd.nist.gov/vuln/detail/CVE-2024-3400

CISA short description

Palo Alto Networks PAN-OS GlobalProtect feature contains a command injection vulnerability that allows an unauthenticated attacker to execute commands with root privileges on the firewall.

Required action

Apply mitigations per vendor instructions as they become available. Otherwise, users with vulnerable versions of affected devices should enable Threat Prevention IDs available from the vendor. See the vendor bulletin for more details and a patch release schedule.

EPSS percentile is the FIRST.org exploit-probability ranking as of the date noted above; it moves daily. CVSS reflects NVD's analysis at time of publication.